Here’s another case where a 2016 phishing incident wasn’t detected until 2017:
Ice Miller LLP represents Equian, LLC and its subsidiaries, including Nurse Audit, LLC (“collectively referred to herein as “Equian”). We are writing to notify you of a security incident involving the personal information of one (1) New Hampshire resident.
On or about March 29, 2017, Equian discovered that on August 23, 2016, an unauthorized third party may have received access to 2015 W-2 tax information for current and former Equian employees through a phishing email scam. The information contained in the W-2 tax forms included the first and last names, addresses, and Social Security numbers of one (1) New Hampshire resident.
Read more.
And yes, I’m adding it to the 2016 W-2 Phishing list.